⚙️Live webinar: AI governance in controlled environments: The next compliance challenge. Register now
MarketplaceGRCCPG 235
GRCGuideline

CPG 235

Prudential Practice Guide CPG 235 - Managing Data Risk

The Prudential Practice Guide CPG 235 provides guidance for Australian financial institutions on how to effectively manage data risk. It focuses on identifying, assessing, and mitigating risks associated with data to ensure its integrity, availability, and confidentiality.

Book your strategy callView source ↗

Overview

The Prudential Practice Guide CPG 235, published by the Australian Prudential Regulation Authority (APRA), aims to help regulated financial institutions develop robust strategies for managing risks tied to their data assets. The guide emphasizes the importance of data management frameworks, risk assessments, and operational controls in safeguarding data integrity, availability, and confidentiality. While not a prescriptive standard, it serves as an advisory guide to align data risk management practices with prudential standards and regulatory expectations. Key themes include governance, accountability, and embedding effective controls. Institutions are encouraged to consider their size, complexity, and risk profile when implementing recommendations from this guide.

Related in GRC

GRCLaw

CBK Law — Law No. (32) of 1968 Concerning Currency, The Central Bank of Kuwait and The Regulation of Banking

Law No. (32) of 1968 establishes the legal framework for the establishment and operation of the Central Bank of Kuwait (CBK) and governs currency issuance, banking regulations, and financial supervision within Kuwait. It includes amendments to address evolving economic and regulatory needs.

Central Bank of Kuwait • Kuwait • v2021

View details
GRCLaw

National Greenhouse and Energy Reporting Act 2007

The National Greenhouse and Energy Reporting Act 2007 establishes a national framework for corporations to report their greenhouse gas emissions, energy production, and energy consumption. It aims to improve data transparency and inform government policy on climate change.

Australian Government • Australia

View details
GRCRegulation

Fair Work Regulations 2009

The Fair Work Regulations 2009 provide detailed legislative backing to the Fair Work Act 2009, outlining the operational rules and requirements for employment relationships, industrial agreements, and workplace standards in Australia. It includes rules on employer obligations, employee protections, and compliance mechanisms.

Department of Employment and Workplace Relations (DEWR) • Australia

View details
GRCStandardControl set

ISO 9001 — ISO 9001:2015 Quality Management Systems — Requirements

ISO 9001:2015 is an international standard for quality management systems. It provides requirements for organizations to establish, implement, maintain, and continually improve a quality management system to enhance customer satisfaction and operational efficiency.

International Organization for Standardization (ISO) • v2015 (Edition 5)

View details

Ready to operationalize these standards?

6clicks maps regulations to controls, evidence and risks automatically.

Book your strategy call